combofix kommer her:
ComboFix 10-12-20.01 - Missus 20-12-2010 21:25:34.2.4 - x64
Microsoft Windows 7 Ultimate 6.1.7600.0.1252.45.1033.18.6007.4287 [GMT 1:00]
Kører fra: c:\users\Missus\Desktop\ComboFix.exe
Kommandoer benyttet :: c:\users\Missus\Desktop\CFScript.txt
AV: ESET NOD32 Antivirus 4.0 *Enabled/Updated* {CB0F8167-5331-BA19-698E-64816B6801A5}
AV: ZoneAlarm Security Suite Antivirus *Disabled/Updated* {E9467272-859A-F159-FA9E-55E7E32D7A25}
FW: ZoneAlarm Security Suite Firewall *Disabled* {D17DF357-CFF5-F001-D1C1-FCD21DFE3D5E}
SP: ESET NOD32 Antivirus 4.0 *Enabled/Updated* {706E6083-750B-B597-533E-5FF310EF4B18}
SP: Spyware Doctor *Disabled/Updated* {94076BB2-F3DA-227F-9A1E-F060FF73600F}
SP: ZoneAlarm Security Suite Anti-Spyware *Disabled/Updated* {52279396-A3A0-FED7-C02E-6E9598AA3098}
.
((((((((((((((((((((((((((((( Filer skabt fra 2010-11-20 til 2010-12-20 )))))))))))))))))))))))))))))))))))
.
2010-12-20 20:28 . 2010-12-20 20:28 -------- d-----w- c:\users\Default\AppData\Local\temp
2010-12-20 19:45 . 2010-12-20 19:45 -------- d-----w- c:\program files (x86)\Trend Micro
2010-12-20 19:27 . 2010-12-20 19:27 -------- d-----w- c:\programdata\Kaspersky SDK
2010-12-20 19:19 . 2010-08-29 01:53 72704 ----a-w- c:\windows\zllsputility.exe
2010-12-20 19:19 . 2009-10-12 17:15 157712 ----a-w- c:\windows\system32\drivers\kl1.sys
2010-12-20 19:18 . 2010-12-20 19:18 -------- d-----w- c:\windows\system32\ZoneLabs
2010-12-20 19:18 . 2010-06-09 18:16 456280 ----a-w- c:\windows\SysWow64\drivers\vsdatant.sys
2010-12-20 19:05 . 2010-12-20 19:05 -------- d-----w- c:\windows\system32\appmgmt
2010-12-20 18:53 . 2010-12-20 18:53 -------- d-----w- c:\program files (x86)\ZoneAlarm_Security
2010-12-20 18:53 . 2010-12-20 18:53 -------- d-----w- c:\program files\CheckPoint
2010-12-20 18:52 . 2010-04-09 11:06 374664 ----a-w- c:\windows\system32\drivers\netio.sys
2010-12-20 18:52 . 2010-08-29 01:53 69120 ----a-w- c:\windows\SysWow64\zlcomm.dll
2010-12-20 18:52 . 2010-08-29 01:53 103936 ----a-w- c:\windows\SysWow64\zlcommdb.dll
2010-12-20 18:52 . 2010-12-20 19:37 -------- d-----w- c:\windows\SysWow64\ZoneLabs
2010-12-20 18:52 . 2010-08-29 01:53 1238528 ----a-w- c:\windows\SysWow64\zpeng25.dll
2010-12-20 18:52 . 2010-06-09 18:16 456280 ----a-w- c:\windows\system32\drivers\vsdatant.sys
2010-12-20 18:52 . 2010-12-20 18:52 -------- d-----w- c:\program files (x86)\Zone Labs
2010-12-20 16:53 . 2010-01-22 08:56 149456 ----a-w- c:\windows\SGDetectionTool.dll
2010-12-20 16:53 . 2010-01-22 08:55 767952 ----a-w- c:\windows\BDTSupport.dll
2010-12-20 16:53 . 2010-01-22 08:56 165840 ----a-w- c:\windows\PCTBDRes.dll
2010-12-20 16:53 . 2010-01-22 08:56 1652688 ----a-w- c:\windows\PCTBDCore.dll
2010-12-20 16:52 . 2010-02-05 08:18 133072 ----a-w- c:\windows\system32\drivers\pctwfpfilter64.sys
2010-12-20 16:52 . 2010-02-05 08:17 306648 ----a-w- c:\windows\system32\drivers\pctgntdi64.sys
2010-12-20 16:52 . 2010-03-29 09:06 233488 ----a-w- c:\windows\system32\drivers\PCTCore64.sys
2010-12-20 16:51 . 2010-04-08 14:06 92896 ----a-w- c:\windows\system32\drivers\pctplsg64.sys
2010-12-20 16:51 . 2010-12-20 20:08 -------- d-----w- c:\program files (x86)\Spyware Doctor
2010-12-20 16:51 . 2010-12-20 16:53 -------- d-----w- c:\program files (x86)\Common Files\PC Tools
2010-12-20 16:51 . 2010-12-20 16:51 -------- d-----w- c:\programdata\PC Tools
2010-12-17 20:56 . 2010-12-17 20:56 -------- d-----w- c:\programdata\CheckPoint
2010-12-17 20:25 . 2010-12-20 20:22 -------- d-----w- c:\windows\Internet Logs
2010-12-15 17:48 . 2010-11-04 06:35 1194496 ----a-w- c:\windows\system32\wininet.dll
2010-12-14 21:40 . 2010-12-14 21:40 -------- d-----w- c:\program files (x86)\Conduit
2010-12-14 21:40 . 2010-12-20 19:39 -------- d-----w- c:\program files (x86)\uTorrentBar
2010-12-14 21:40 . 2010-12-14 21:40 -------- d-----w- C:\extensions
2010-12-13 20:39 . 2010-12-13 20:39 -------- d-----w- c:\program files (x86)\Common Files\Java
2010-12-13 20:39 . 2010-12-13 20:39 472808 ----a-w- c:\windows\SysWow64\deployJava1.dll
2010-12-13 20:39 . 2010-12-13 20:39 -------- d-----w- c:\program files (x86)\Java
2010-12-12 12:01 . 2010-12-12 12:01 -------- d-----w- c:\program files (x86)\Hewlett-Packard
2010-12-10 16:11 . 2010-12-10 16:11 -------- d-----w- c:\program files (x86)\Common Files\Windows Live
2010-12-09 22:56 . 2010-12-09 22:56 -------- d-----w- c:\users\Default\AppData\Local\Microsoft Help
2010-12-09 22:44 . 2010-12-09 22:44 -------- d-----w- c:\windows\Sun
2010-12-09 22:44 . 2010-12-09 22:44 521448 ----a-w- c:\windows\system32\deployJava1.dll
2010-12-09 22:44 . 2010-12-09 22:44 -------- d-----w- c:\program files\Java
2010-12-09 22:42 . 2010-12-09 22:42 -------- d-----w- c:\program files (x86)\Common Files\Adobe
2010-12-09 21:20 . 2010-12-09 21:20 -------- d-sh--w- c:\programdata\DSS
2010-12-09 20:21 . 2010-12-09 20:21 -------- d-----w- c:\windows\SysWow64\AGEIA
2010-12-09 20:21 . 2010-12-09 20:21 -------- d-----w- c:\program files (x86)\AGEIA Technologies
2010-12-09 20:21 . 2010-12-20 18:39 -------- d-----w- c:\program files (x86)\Common Files\Wise Installation Wizard
2010-12-09 20:20 . 2010-12-11 10:06 -------- d-----w- C:\Spil
2010-12-09 20:18 . 2010-12-09 20:19 -------- d-----w- c:\program files (x86)\DAEMON Tools Lite
2010-12-09 19:34 . 2004-08-04 14:52 6067 ----a-w- c:\windows\SysWow64\drivers\SnxUF2.sys
2010-12-09 19:34 . 2010-12-09 19:34 -------- d--h--w- c:\program files (x86)\InstallShield Installation Information
2010-12-09 19:34 . 2010-12-09 19:34 -------- d-----w- c:\program files (x86)\SHARKOON Technologies GmbH
2010-12-09 19:34 . 2004-08-19 16:30 46280 ----a-w- c:\windows\SysWow64\drivers\UALFDrv2.sys
2010-12-09 19:34 . 2010-12-09 19:34 -------- d-----w- c:\program files (x86)\Common Files\InstallShield
2010-12-09 19:00 . 2010-12-09 19:00 -------- d-----w- c:\windows\SysWow64\Wat
2010-12-09 19:00 . 2010-12-09 19:00 -------- d-----w- c:\windows\system32\Wat
2010-12-09 18:46 . 2010-12-09 18:46 -------- d-----w- c:\program files\ESET
2010-12-09 18:27 . 2010-12-09 18:27 -------- d-----w- c:\program files (x86)\CCleaner
2010-12-09 18:08 . 2010-12-09 18:12 -------- d-----w- c:\program files (x86)\Microsoft Works
2010-12-09 18:08 . 2010-12-09 18:08 -------- d-----w- c:\windows\PCHEALTH
2010-12-09 18:07 . 2010-12-09 18:07 -------- d-----w- C:\IDE
2010-12-09 18:07 . 2010-12-09 18:07 -------- d-----w- c:\program files (x86)\Microsoft Visual Studio 8
2010-12-09 18:06 . 2010-12-15 20:40 -------- d-----w- c:\programdata\Microsoft Help
2010-12-09 18:06 . 2010-12-09 18:06 -------- d-----r- C:\MSOCache
2010-12-09 18:00 . 2010-12-09 18:00 -------- d-----w- c:\programdata\NVIDIA
2010-12-09 17:51 . 2010-12-09 17:51 -------- d-----w- c:\programdata\NVIDIA Corporation
2010-12-09 17:51 . 2010-12-09 17:51 -------- d-----w- c:\program files\NVIDIA Corporation
2010-12-09 17:50 . 2010-12-09 17:50 -------- d-----w- c:\windows\SysWow64\RTCOM
2010-12-09 17:50 . 2010-12-09 17:50 -------- d-----w- c:\program files\Realtek
2010-12-09 17:48 . 2010-12-09 18:08 -------- d-----w- c:\program files (x86)\Microsoft.NET
2010-12-09 17:45 . 2009-07-13 18:01 3584 ----a-w- c:\windows\system32\Spool\prtprocs\x64\da-DK\LXKPTPRC.DLL.mui
2010-12-09 17:45 . 2009-10-10 03:17 14336 ----a-w- c:\windows\system32\drivers\sffp_sd.sys
2010-12-09 17:44 . 2010-03-04 04:32 243712 ----a-w- c:\windows\system32\drivers\ks.sys
2010-12-09 17:43 . 2010-08-04 07:07 961024 ----a-w- c:\windows\system32\CPFilters.dll
2010-12-09 17:43 . 2010-08-04 07:07 552960 ----a-w- c:\windows\system32\msdri.dll
2010-12-09 17:43 . 2010-08-04 07:05 288256 ----a-w- c:\windows\system32\MSNP.ax
2010-12-09 17:43 . 2010-08-04 07:05 258560 ----a-w- c:\windows\system32\mpg2splt.ax
2010-12-09 17:43 . 2010-08-04 06:18 641536 ----a-w- c:\windows\SysWow64\CPFilters.dll
2010-12-09 17:43 . 2010-08-04 06:15 204288 ----a-w- c:\windows\SysWow64\MSNP.ax
2010-12-09 17:43 . 2010-08-04 06:15 199680 ----a-w- c:\windows\SysWow64\mpg2splt.ax
2010-12-09 17:43 . 2009-12-13 09:46 613888 ----a-w- c:\windows\system32\psisdecd.dll
2010-12-09 17:43 . 2009-12-13 09:30 465408 ----a-w- c:\windows\SysWow64\psisdecd.dll
2010-12-09 17:43 . 2010-04-07 07:37 861184 ----a-w- c:\windows\system32\oleaut32.dll
2010-12-09 17:43 . 2010-04-07 07:10 571904 ----a-w- c:\windows\SysWow64\oleaut32.dll
2010-12-09 17:31 . 2009-11-25 11:47 99176 ----a-w- c:\windows\SysWow64\PresentationHostProxy.dll
2010-12-09 17:31 . 2009-11-25 11:47 49472 ----a-w- c:\windows\SysWow64\netfxperf.dll
2010-12-09 17:31 . 2009-11-25 11:47 48960 ----a-w- c:\windows\system32\netfxperf.dll
2010-12-09 17:31 . 2009-11-25 11:47 297808 ----a-w- c:\windows\SysWow64\mscoree.dll
2010-12-09 17:31 . 2009-11-25 11:47 295264 ----a-w- c:\windows\SysWow64\PresentationHost.exe
2010-12-09 17:31 . 2009-11-25 11:47 1130824 ----a-w- c:\windows\SysWow64\dfshim.dll
2010-12-09 17:31 . 2009-11-25 11:47 109912 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2010-12-09 17:31 . 2009-11-25 11:47 444752 ----a-w- c:\windows\system32\mscoree.dll
2010-12-09 17:31 . 2009-11-25 11:47 320352 ----a-w- c:\windows\system32\PresentationHost.exe
2010-12-09 17:31 . 2009-11-25 11:47 1942856 ----a-w- c:\windows\system32\dfshim.dll
2010-12-09 17:30 . 2010-02-23 08:16 294912 ----a-w- c:\windows\system32\browserchoice.exe
2010-12-09 17:26 . 2010-06-08 06:02 1233920 ----a-w- c:\windows\SysWow64\msxml3.dll
2010-12-09 17:26 . 2010-06-08 05:36 1877504 ----a-w- c:\windows\system32\msxml3.dll
2010-12-09 17:26 . 2010-05-19 19:48 144384 ----a-w- c:\windows\system32\cdd.dll
2010-12-09 17:26 . 2010-08-26 05:27 148992 ----a-w- c:\windows\system32\t2embed.dll
2010-12-09 17:26 . 2010-08-26 04:39 109056 ----a-w- c:\windows\SysWow64\t2embed.dll
2010-12-09 17:26 . 2010-05-05 07:37 483840 ----a-w- c:\windows\system32\StructuredQuery.dll
2010-12-09 17:26 . 2010-05-05 06:46 363520 ----a-w- c:\windows\SysWow64\StructuredQuery.dll
2010-12-09 17:26 . 2010-08-21 06:38 1024512 ----a-w- c:\windows\system32\wmpmde.dll
2010-12-09 17:26 . 2010-08-21 05:36 738816 ----a-w- c:\windows\SysWow64\wmpmde.dll
2010-12-09 17:26 . 2009-10-19 14:46 100864 ----a-w- c:\windows\system32\fontsub.dll
2010-12-09 17:26 . 2009-10-19 14:10 70656 ----a-w- c:\windows\SysWow64\fontsub.dll
2010-12-09 17:21 . 2010-12-09 17:21 -------- d-----w- c:\windows\SysWow64\Macromed
2010-12-09 17:19 . 2010-12-09 17:19 -------- d-sh--w- c:\windows\SysWow64\%APPDATA%
2010-12-09 17:19 . 2010-12-20 19:39 -------- d-----w- c:\program files (x86)\DAEMON Tools Toolbar
2010-12-09 17:18 . 2010-12-09 17:18 834544 ----a-w- c:\windows\system32\drivers\sptd.sys
2010-12-09 17:18 . 2010-12-09 17:18 -------- d-----w- c:\programdata\DAEMON Tools Lite
2010-12-09 17:18 . 2010-12-09 17:18 -------- d-----w- c:\program files (x86)\Windows Live
2010-12-09 17:17 . 2010-12-09 17:17 -------- d-----w- c:\program files\7-Zip
2010-12-09 17:17 . 2010-12-20 19:45 -------- d-sh--w- c:\windows\Installer
2010-12-09 17:16 . 2010-12-09 17:16 -------- d-----w- c:\program files (x86)\VideoLAN
2010-12-09 17:16 . 2010-12-09 17:16 -------- d-----w- c:\windows\SysWow64\custom matrices
2010-12-09 17:16 . 2010-12-09 17:16 -------- d-----w- c:\windows\SysWow64\C2MP
2010-12-09 17:16 . 2010-12-09 17:16 -------- d-----w- c:\windows\SysWow64\QuickTime
2010-12-09 17:15 . 2010-12-09 17:15 -------- d-----w- c:\program files (x86)\Combined Community Codec Pack
2010-12-09 17:15 . 2010-12-09 17:15 -------- d-----w- c:\program files (x86)\IObit
.
(((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-12-09 19:00 . 2009-12-18 17:16 419840 ----a-w- c:\windows\system32\systemcpl.dll
2010-12-09 19:00 . 2009-07-13 23:52 14848 ----a-w- c:\windows\system32\slwga.dll
2010-12-09 19:00 . 2009-07-13 23:36 13824 ----a-w- c:\windows\SysWow64\slwga.dll
2010-12-09 19:00 . 2009-07-13 23:38 1008640 ----a-w- c:\windows\system32\user32.dll
2010-12-09 19:00 . 2009-07-13 23:24 833024 ----a-w- c:\windows\SysWow64\user32.dll
.
------- Sigcheck -------
- 2010-12-09 . 861C4346F9281DC0380DE72C8D55D6BE . 833024 . . [6.1.7600.16385] . . c:\windows\SysWOW64\user32.dll
[7] 2009-07-14 . 72D7B3EA16946E8F0CF7458150031CC6 . 1008640 . . [6.1.7600.16385] . . c:\windows\winsxs\amd64_microsoft-windows-user32_31bf3856ad364e35_6.1.7600.16385_none_292d5de8870d85d9\user32.dll
[7] 2009-07-14 . E8B0FFC209E504CB7E79FC24E6C085F0 . 833024 . . [6.1.7600.16385] . . c:\windows\winsxs\wow64_microsoft-windows-user32_31bf3856ad364e35_6.1.7600.16385_none_3382083abb6e47d4\user32.dll
- 2010-12-09 . 2C353B6CE0C8D03225CAA2AF33B68D79 . 1008640 . . [6.1.7600.16385] . . c:\windows\system32\user32.dll
- 2010-12-09 . 861C4346F9281DC0380DE72C8D55D6BE . 833024 . . [6.1.7600.16385] . . c:\windows\SysWOW64\user32.dll
[7] 2009-07-14 . 72D7B3EA16946E8F0CF7458150031CC6 . 1008640 . . [6.1.7600.16385] . . c:\windows\winsxs\amd64_microsoft-windows-user32_31bf3856ad364e35_6.1.7600.16385_none_292d5de8870d85d9\user32.dll
[7] 2009-07-14 . E8B0FFC209E504CB7E79FC24E6C085F0 . 833024 . . [6.1.7600.16385] . . c:\windows\winsxs\wow64_microsoft-windows-user32_31bf3856ad364e35_6.1.7600.16385_none_3382083abb6e47d4\user32.dll
- 2010-12-09 . 2C353B6CE0C8D03225CAA2AF33B68D79 . 1008640 . . [6.1.7600.16385] . . c:\windows\system32\user32.dll
.
((((((((((((((((((((((((((((((((((( Start steder i reg.basen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Bemærk* tomme linier & lovlige standard linier vises ikke
REGEDIT4
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{91da5e8a-3318-4f8c-b67e-5964de3ab546}"= "c:\program files (x86)\ZoneAlarm_Security\tbZone.dll" [2010-12-01 2735200]
[HKEY_CLASSES_ROOT\clsid\{91da5e8a-3318-4f8c-b67e-5964de3ab546}]
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
2010-11-29 14:26 3908192 ----a-w- c:\program files (x86)\ConduitEngine\ConduitEngine.dll
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{91da5e8a-3318-4f8c-b67e-5964de3ab546}]
2010-12-01 10:27 2735200 ----a-w- c:\program files (x86)\ZoneAlarm_Security\tbZone.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{30F9B915-B755-4826-820B-08FBA6BD249D}"= "c:\program files (x86)\ConduitEngine\ConduitEngine.dll" [2010-11-29 3908192]
"{91da5e8a-3318-4f8c-b67e-5964de3ab546}"= "c:\program files (x86)\ZoneAlarm_Security\tbZone.dll" [2010-12-01 2735200]
[HKEY_CLASSES_ROOT\clsid\{30f9b915-b755-4826-820b-08fba6bd249d}]
[HKEY_CLASSES_ROOT\clsid\{91da5e8a-3318-4f8c-b67e-5964de3ab546}]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2010-04-01 357696]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"="c:\program files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" [2008-10-25 31072]
"SHARKOON STATION"="c:\program files (x86)\SHARKOON Technologies GmbH\SHARKOON STATION\Majestic.exe" [2004-11-11 327680]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2010-09-23 35760]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-09-20 932288]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552]
"ZoneAlarm Client"="c:\program files (x86)\Zone Labs\ZoneAlarm\zlclient.exe" [2010-08-29 1039360]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-07-14 1475072]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2010-04-01 357696]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 0 (0x0)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"NoResolveTrack"= 1 (0x1)
"NoSMBalloonTip"= 1 (0x1)
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 sdAuxService;PC Tools Auxiliary Service;c:\program files (x86)\Spyware Doctor\pctsAuxs.exe [2010-03-11 366840]
R3 UALFDrv2;UALFDrv2;c:\windows\system32\DRIVERS\UALFDrv2.sys [x]
R3 WatAdminSvc;WatAdminSvc; [x]
S0 PCTCore;PCTools KDS;c:\windows\system32\drivers\PCTCore64.sys [2010-03-29 233488]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2010-12-09 834544]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2009-11-16 136584]
S2 Browser Defender Update Service;Browser Defender Update Service;c:\program files (x86)\Spyware Doctor\BDT\BDTUpdateService.exe [2010-01-22 112592]
S2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2009-11-16 735960]
S2 epfwwfpr;epfwwfpr;c:\windows\system32\DRIVERS\epfwwfpr.sys [2009-11-16 123200]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2009-03-01 187392]
--- Andre Services/Drivers i Hukommelsen ---
*Deregistered* - PCTSDInjDriver64
.
--------- x86-64 -----------
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2010-12-09 2715704]
.
------- Yderligere scanning -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page =
hxxp://ekstrabladet.dk/mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&ksporter til Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
.
- - - - TOMME GENVEJE FJERNET - - - -
WebBrowser-{91DA5E8A-3318-4F8C-B67E-5964DE3AB546} - (no file)
.
--------------------- LÅSTE REGISTRERINGS NØGLER ---------------------
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10m_ActiveX.exe,-101"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10m_ActiveX.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10m.ocx"
"ThreadingModel"="Apartment"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10m.ocx, 1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10m.ocx"
"ThreadingModel"="Apartment"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10m.ocx, 1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
[HKEY_LOCAL_MACHINE\SOFTWARE\ESET\ESET Security\CurrentVersion\Info]
@Denied: (2) (LocalSystem)
"AppDataDir"="c:\\ProgramData\\ESET\\ESET NOD32 Antivirus\\"
"DataDir"="ESET\\ESET NOD32 Antivirus\\"
"EditionName"=" "
"InstallDir"="c:\\Program Files\\ESET\\ESET NOD32 Antivirus\\"
"LanguageId"=dword:00000409
"PackageTag"=dword:6090e758
"ProductBase"=dword:00000000
"ProductCode"="{57B012C9-5EAD-441B-9925-6B560B543D87}"
"ProductName"="ESET NOD32 Antivirus"
"ProductType"="eav"
"ProductVersion"="4.0.474.0"
"UniqueId"="001E420F4D012425"
"ScannerBuild"=dword:000017cd
"ScannerVersionId"=dword:00001214
"ScannerVersion"="Open window for status."
"FixId"=dword:00000007
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Gennemført tid: 2010-12-20 21:29:59
ComboFix-quarantined-files.txt 2010-12-20 20:29
ComboFix2.txt 2010-12-20 20:15
Pre-Kørsel: 927.352.958.976 byte ledig
Post-Kørsel: 927.303.520.256 byte ledig
- - End Of File - - 0318996299D11171556BB0D5F0D1E047
